From 6f6fbb846c6c402ff4811a1d5452d828fee5fb04 Mon Sep 17 00:00:00 2001
From: Dietmar Maurer <dietmar@proxmox.com>
Date: Tue, 2 Dec 2014 14:01:32 +0100
Subject: [PATCH] pveproxy: also support newer tls versions

---
 bin/pveproxy | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/bin/pveproxy b/bin/pveproxy
index b1d4800b..9752bce0 100755
--- a/bin/pveproxy
+++ b/bin/pveproxy
@@ -107,7 +107,8 @@ eval {
 	ssl => {
 	    # Note: older versions are considered insecure, for example
 	    # search for "Poodle"-Attac
-	    method => "tlsv1",
+	    sslv2 => 0,
+	    sslv3 => 0,	    
 	    cipher_list => $proxyconf->{CIPHERS} || 'HIGH:MEDIUM:!aNULL:!MD5',
 	    key_file => '/etc/pve/local/pve-ssl.key',
 	    cert_file => '/etc/pve/local/pve-ssl.pem',